Feat(desktop) Add mcp auth from TUI and VS Code support

[lesserevil]

Closes #12061

This PR adds two features:

• Add support for auth for mcps which need oauth from TUI
• Add ability for VSCode remote connections to tunnel the oauth connection back to the host VSCode device

Auth isn't done automatically, only when you 'enable' the mcp. If we did them all at once, we could get ugly auth storms.

Tested via manual testing on multiple MCPs, both from remote and local VSCode connections.

[github-actions]

Hey! Your PR title Add mcp auth from TUI and VS Code support doesn't follow conventional commit format.

Please update it to start with one of:

• feat: or feat(scope): new feature
• fix: or fix(scope): bug fix
• docs: or docs(scope): documentation changes
• chore: or chore(scope): maintenance tasks
• refactor: or refactor(scope): code refactoring
• test: or test(scope): adding or updating tests

Where scope is the package name (e.g., app, desktop, opencode).

See CONTRIBUTING.md for details.

[github-actions]

The following comment was made by an LLM, it may be inaccurate:

Based on my search, I found several potentially related PRs that address similar MCP authentication features:

Most Relevant:

• PR feat(tui): add MCP OAuth authentication in dialog-mcp #11925 - feat(tui): add MCP OAuth authentication in dialog-mcp

  • Directly related: Adds MCP OAuth authentication in TUI (dialog-mcp)

• PR feat(app): add MCP OAuth authentication UI to settings #11477 - feat(app): add MCP OAuth authentication UI to settings

  • Related: Adds MCP OAuth authentication UI, likely in the app/VSCode extension

• PR fix: enable MCP server after OAuth completion #6960 - fix: enable MCP server after OAuth completion

  • Related: Handles enabling MCP after OAuth, which aligns with your PR's "enable" workflow

• PR Fix MCP OAuth auth commands to recognize remote servers by default #5537 - Fix MCP OAuth auth commands to recognize remote servers by default

  • Related: Addresses OAuth with remote servers/VSCode connections

Other related:

• PR fix: use localhost instead of 127.0.0.1 for OAuth callback #5781 - fix: use localhost instead of 127.0.0.1 for OAuth callback
  • May be relevant to OAuth callback handling in remote tunneling

These PRs suggest that MCP OAuth authentication features are being actively developed across multiple components (TUI, app, remote servers). PR #11925 and #11477 appear to be the closest potential duplicates, as they also implement MCP OAuth authentication support in similar contexts.

[lesserevil]

Hey! Your PR title Add mcp auth from TUI and VS Code support doesn't follow conventional commit format.

Please update it to start with one of:

• feat: or feat(scope): new feature
• fix: or fix(scope): bug fix
• docs: or docs(scope): documentation changes
• chore: or chore(scope): maintenance tasks
• refactor: or refactor(scope): code refactoring
• test: or test(scope): adding or updating tests

Where scope is the package name (e.g., app, desktop, opencode).

See CONTRIBUTING.md for details.

Fixed!